ID: 26696
Updated by: [EMAIL PROTECTED]
Reported By: saruman at northernhacking dot org
Status: Verified
Bug Type: Zend Engine 2 problem
Operating System: Linux RH9
-PHP Version: 5.0.0b3 (beta3)
+PHP Version: 5CVS-2004-01-02
New Comment:
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 16384 (LWP 20298)]
0x08357f99 in zend_pzval_unlock_func (z=0x1) at
/usr/src/web/php/php5/Zend/zend_execute.c:64
64 z->refcount--;
(gdb) bt
#0 0x08357f99 in zend_pzval_unlock_func (z=0x1) at
/usr/src/web/php/php5/Zend/zend_execute.c:64
#1 0x08358499 in zend_switch_free (opline=0x40e491f8, Ts=0xbfffd640)
at /usr/src/web/php/php5/Zend/zend_execute.c:198
#2 0x083545d6 in zend_switch_free_handler (execute_data=0xbfffd7a0,
op_array=0x40e48704)
at /usr/src/web/php/php5/Zend/zend_execute.c:3072
#3 0x0834efd8 in execute (op_array=0x40e48704) at
/usr/src/web/php/php5/Zend/zend_execute.c:1260
#4 0x0832d924 in zend_execute_scripts (type=8, retval=0x0,
file_count=3) at /usr/src/web/php/php5/Zend/zend.c:1050
#5 0x082eac2c in php_execute_script (primary_file=0xbffffba0) at
/usr/src/web/php/php5/main/main.c:1642
#6 0x08367237 in main (argc=2, argv=0xbffffc34) at
/usr/src/web/php/php5/sapi/cli/php_cli.c:924
Previous Comments:
------------------------------------------------------------------------
[2003-12-22 22:35:58] saruman at northernhacking dot org
One little note, it crashes in zval_unlock_func with z = 0x01, which
makes no sense for a pointer.
------------------------------------------------------------------------
[2003-12-22 17:22:03] saruman at northernhacking dot org
This bug is very similar to #26281, in fact, it's probably the same.
------------------------------------------------------------------------
[2003-12-22 17:11:57] saruman at northernhacking dot org
Backtrace:
Starting program: /usr/local/php5/bin/php
/usr/local/apache/htdocs/API/Tests/testCrash.php
[New Thread 1075549824 (LWP 23600)]
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 1075549824 (LWP 23600)]
zend_switch_free_handler (execute_data=0xbfffcfb0,
op_array=0x401c31a4)
at /usr/src/php-5.0.0b3/Zend/zend_execute.c:64
64 z->refcount--;
(gdb) bt
#0 zend_switch_free_handler (execute_data=0xbfffcfb0,
op_array=0x401c31a4)
at /usr/src/php-5.0.0b3/Zend/zend_execute.c:64
#1 0x081ab760 in execute (op_array=0x401c31a4)
at /usr/src/php-5.0.0b3/Zend/zend_execute.c:1260
#2 0x081926b5 in zend_execute_scripts (type=8, retval=0x0,
file_count=3)
at /usr/src/php-5.0.0b3/Zend/zend.c:1048
#3 0x08163adb in php_execute_script (primary_file=0xbffff380)
at /usr/src/php-5.0.0b3/main/main.c:1638
#4 0x081b5b60 in main (argc=2, argv=0xbffff404)
at /usr/src/php-5.0.0b3/sapi/cli/php_cli.c:910
#5 0x42015704 in __libc_start_main () from /lib/tls/libc.so.6
------------------------------------------------------------------------
[2003-12-22 17:00:20] [EMAIL PROTECTED]
Maybe related to bug #17997
------------------------------------------------------------------------
[2003-12-22 14:51:55] saruman at northernhacking dot org
case '?': is the culprit.
------------------------------------------------------------------------
The remainder of the comments for this report are too long. To view
the rest of the comments, please view the bug report online at
http://bugs.php.net/26696
--
Edit this bug report at http://bugs.php.net/?id=26696&edit=1
